"aT4r InsaN3" wrote:
> if an attacker with axx to the system is able to modify the scriptfile he
> can modify the script and place an evil command Quote AAAAAA..SHELLCODE...
> and execute code with elevated privileges.
Yes, but since he can also use the ftp client's built-in "!" command to
execute shell commands in that case, this does not seem to be a very
realistic scenario?
Regards,
David
--
class sig{static void main(String[]s){for// D.C. van Moolenbroek
(int _=0;19>_;System.out.print((char)(52^// (CS student, VU, NL)
"Y`KbddaZ}`P#KJ#caBG".charAt(_++)-9)));}}// -Java sigs look bad-
This archive was generated by hypermail 2b30 : Wed Apr 30 2003 - 15:02:18 PDT